Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
File: OGKIZa_YpN-v3e-BHvz8ecA4czI.mft (raw, json)
Hash identifier: EqYAY2gsRk+NHlhL4RQKA6X47Bh/TsESn6sdGLEAtV4=
Subject key identifier: 43:58:F7:89:A3:7D:53:51:48:C5:A6:19:9C:B7:BC:FD:01:1A:9B:CD
Authority key identifier: 38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32
Certificate issuer: /CN=38628865afd8a4dfafddef811efcfc79c0387332
Certificate serial: 0193568AE1314C219405D3F77D9E040BA70A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
Manifest number: 0868
Signing time: Sat 23 Nov 2024 01:02:42 +0000
Manifest this update: Sat 23 Nov 2024 01:02:42 +0000
Manifest next update: Sun 24 Nov 2024 01:02:42 +0000
Files and hashes: 1: OGKIZa_YpN-v3e-BHvz8ecA4czI.crl (hash: FX++AY30/7Pyt0iszvbkq6Oe46Tjw8Y+hYKByzicKbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 01:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:56:8a:e1:31:4c:21:94:05:d3:f7:7d:9e:04:0b:a7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38628865afd8a4dfafddef811efcfc79c0387332
Validity
Not Before: Nov 23 01:02:42 2024 GMT
Not After : Nov 24 01:02:42 2024 GMT
Subject: CN=4358f789a37d535148c5a6199cb7bcfd011a9bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bd:d8:4f:30:d7:9a:84:6a:21:8b:5c:d0:cc:
f8:97:2e:3e:90:47:bc:d5:53:05:53:e6:76:bc:05:
32:70:67:e0:84:00:c2:54:e5:7b:38:0d:9b:76:0b:
b5:4d:6e:09:10:d2:ae:5e:e7:72:8a:b1:38:46:75:
f5:30:62:66:4a:af:d7:18:02:5b:23:41:95:1f:64:
e6:de:08:cb:df:d8:96:a1:c1:af:1d:56:df:a9:1a:
52:2d:db:1e:ce:58:c2:5c:bf:4d:3f:e1:15:c2:23:
2a:a1:da:d7:f2:11:a0:76:f0:3e:e6:7f:1e:cc:2f:
61:2b:46:c6:c3:80:51:37:f8:4d:98:bb:34:8d:6c:
a4:26:0c:9e:73:6b:80:05:e2:71:99:03:f5:fb:70:
91:f5:b7:97:04:79:9f:17:63:16:2a:8f:c3:c3:a8:
5e:8c:46:9a:d2:19:aa:25:c5:4a:bb:11:76:82:6f:
2e:aa:ef:dc:03:37:61:1e:69:45:21:b0:b9:d7:19:
95:b4:80:b4:23:1c:ca:3e:c7:7a:d4:b8:3d:02:0f:
2b:9d:4f:1f:a0:d5:53:c9:f7:4f:7f:0b:63:c1:3f:
b3:77:bb:7a:d3:e9:32:1b:ce:3a:7c:62:b0:fd:8f:
5d:1e:ee:dc:9d:57:b5:d4:99:b9:a9:54:46:95:6b:
70:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:58:F7:89:A3:7D:53:51:48:C5:A6:19:9C:B7:BC:FD:01:1A:9B:CD
X509v3 Authority Key Identifier:
keyid:38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a0:30:c5:9e:5a:66:b8:44:a5:09:ce:2a:93:ba:3c:0e:62:
12:de:8d:90:97:b6:3f:24:c5:3a:0d:5c:87:32:12:3b:a5:0e:
58:85:6e:fe:97:d6:e7:67:04:68:cb:a7:eb:54:b8:06:42:2e:
72:12:5f:dc:d2:5e:30:af:ea:e6:5c:a2:55:dd:6e:6c:2c:99:
be:c0:b3:eb:b0:af:62:d5:d4:c4:a4:66:ee:fa:a9:e8:ab:c3:
ab:c7:92:05:c1:51:b8:a1:a4:d0:b5:91:e1:4a:3a:fa:e7:f7:
ca:21:88:fd:12:9b:90:c5:d6:a1:59:ff:e4:85:4d:f8:30:74:
e6:37:5b:7d:d5:ab:37:8f:1c:09:be:24:70:26:d6:cf:29:76:
35:9e:34:6f:5f:06:6b:be:38:dd:da:dc:5c:d9:b3:01:83:b8:
c7:b8:07:d8:0b:e0:c7:44:71:4d:c6:e2:61:ea:e4:07:da:8e:
f7:91:03:dc:2e:23:21:d3:54:6a:0e:92:0b:d8:24:07:34:08:
77:ce:ba:04:63:23:3f:84:9d:1c:49:93:8a:40:25:1b:da:c6:
76:68:3a:4d:50:74:86:f0:1c:dc:c6:0a:10:bd:7e:a2:d0:3f:
93:87:71:de:d1:7c:04:e5:80:56:09:01:9c:ac:98:6d:1a:22:
9b:4d:05:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:43:53 2024 by rpki-client on console-ams.rpki-client.org